CVE-2014-6271: GNU Bourne-Again Shell (Bash) Arbitrary Code Execution
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability. GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code.
- CISA KEV-listed (remediation due 2022-07-28)
- EPSS 94.2% (99.9% percentile)